EUVD-2026-0023

Malicious code in sfnt2woff-zopfli PyPI...

MAL-2026-1 Malicious code in sfnt2woff-zopfli (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f372716a5cf92b41a37e0d7a83e287a41fcaca77b3cf9a324554c20a86635d8a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in sfnt2woff-zopfli (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f372716a5cf92b41a37e0d7a83e287a41fcaca77b3cf9a324554c20a86635d8a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-27655 Malicious code in node-sfnt2woff-zopfli (npm)

The package node-sfnt2woff-zopfli was found to contain malicious code...

Malicious code in node-sfnt2woff-zopfli (npm)

The package node-sfnt2woff-zopfli was found to contain malicious code...

Fedora: Security Advisory (FEDORA-2025-a2a56326b3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2025-3140334065)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 41 Update: sfnt2woff-zopfli-1.3.1-15.fc41

This is a modified version of the sfnt2woff utility that uses Zopfli as a compression algorithm instead of zlib. This results in compression gains of =E2=80=94 on average =E2=80=94 5-8% compared to regular WOFF files. Zopfli generates co mpressed output that is compatible with regular zlib...

[SECURITY] Fedora 42 Update: sfnt2woff-zopfli-1.3.1-15.fc42

This is a modified version of the sfnt2woff utility that uses Zopfli as a compression algorithm instead of zlib. This results in compression gains of =E2=80=94 on average =E2=80=94 5-8% compared to regular WOFF files. Zopfli generates co mpressed output that is compatible with regular zlib...

Fedora 41 : sfnt2woff-zopfli (2025-a2a56326b3)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-a2a56326b3 advisory. Security fix for CVE-2010-1028 and other security-relevant bugs; see https://github.com/bramstein/sfnt2woff-zopfli/pull/20/commits. Tenable has extracted the...

Fedora 37 : sfnt2woff-zopfli (2022-8d29386f00)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-8d29386f00 advisory. Fix a possible double free in woffEncode Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Fedora 36 : sfnt2woff-zopfli (2022-f0980dffd1)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-f0980dffd1 advisory. Fix a possible double free in woffEncode Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Fedora 35 : sfnt2woff-zopfli (2022-458378be7a)

The remote Fedora 35 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-458378be7a advisory. Fix a possible double free in woffEncode Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

[SECURITY] Fedora 37 Update: sfnt2woff-zopfli-1.3.1-3.fc37

This is a modified version of the sfnt2woff utility that uses Zopfli as a compression algorithm instead of zlib. This results in compression gains of =EF=BF=BD=EF=BF=BD=EF=BF=BD on average =EF=BF=BD=EF=BF=BD=EF=BF=BD 5-8% compared to regular WOFF files. Z opfli generates compressed output that is...

[SECURITY] Fedora 36 Update: sfnt2woff-zopfli-1.3.1-3.fc36

This is a modified version of the sfnt2woff utility that uses Zopfli as a compression algorithm instead of zlib. This results in compression gains of =EF=BF=BD=EF=BF=BD=EF=BF=BD on average =EF=BF=BD=EF=BF=BD=EF=BF=BD 5-8% compared to regular WOFF files. Z opfli generates compressed output that is...

[SECURITY] Fedora 35 Update: sfnt2woff-zopfli-1.3.1-3.fc35

This is a modified version of the sfnt2woff utility that uses Zopfli as a compression algorithm instead of zlib. This results in compression gains of =EF=BF=BD=EF=BF=BD=EF=BF=BD on average =EF=BF=BD=EF=BF=BD=EF=BF=BD 5-8% compared to regular WOFF files. Z opfli generates compressed output that is...

Fedora: Security Advisory for sfnt2woff-zopfli (FEDORA-2022-458378be7a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for sfnt2woff-zopfli (FEDORA-2022-8d29386f00)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for sfnt2woff-zopfli (FEDORA-2022-f0980dffd1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AZL-43651 CVE-2022-44081 affecting package zopfli 1.0.3-7

Lodepng v20220717 was discovered to contain a segmentation fault via the function pngdetail...